Home > IT Answers > Security > Secure the qsecofr profile
Gunfighter6
0 pts.
 Secure the qsecofr profile
Security management
We are looking for a way to secure the qsecofr profile, more specifically, limit who can change the password. Certain applications on our system require intermittent use of the qsecofr profile, by users with SECADM and ALLOBJ, making it difficult to keep Qsecofr secure when mutable users can change the password. I have looked at an exit point ?CHGP0100?, but don?t see that we can prevent changes to a given profile. Any suggestions will be appreciated. Thank you, Mark

Software/Hardware used:
ASKED: May 6, 2005  12:19 PM
UPDATED: May 18, 2005  3:32 PM
RELATED QUESTIONS
Answer Wiki:
why not assigned only certain users to hv those authorities? create something like trigger whenever user use the "CHGUSRPRF" command. Or secure the "CHGUSRPRF" command by a user group (or userid like your own userid) and limit the users who can have access to this command. in as400 everything is an object, so search for the "CHGUSRPRF" object and add an authority list on top. Take out the special authorities from all those irresponsible users and realigned who can be given those authorities in their as400 profiles if everybody screams go to your boss and push through a "reform"
Last Wiki Answer Submitted:  May 12, 2005  2:42 am  by  Mayleong   0 pts.
All Answer Wiki Contributors:  Mayleong   0 pts.
To see all answers submitted to the Answer Wiki: View Answer History.


RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

 

Is it possible for you to modify those applications requiring qsecofr to adopt qsecofr privledges. This way you do not need to know the qsecofr password or be signed on as qsecofr.

Tbfleet
 0 pts.